Appreciate your response.
I was actually looking at a "customized" approach. Let me make my question specific.
The following was what i had tried. I had two applications with groups and roles appropriately defined. I defined the roles through the
<security-constraint> tag in the web.xml file. Both the applications were working fine independently.
Now, to
test SSO concept, i had enabled SSO in RAD 7 (which uses WebSphere test environment). What i wanted was to navigate from a secure page in applicationA to a secure page in applicationB without the user having to authenticate himself again. However, when the user tried to navigate to a secure page in applicationB, he was prompted to enter his userid/password since the <login-config> value was set to FORM. Considering that the user had logged in to applicationA, and SSO was enabled in RAD7 - why is it that the security credentials are not being made available while entering applicationB ?